ICT & Security Risk Manager
Investitori SGR has been a company of the Allianz SE Group for over 20 years. While being a leader in the insurance, banking and asset management products and services offers, it is also dedicated to managing large assets. Drawing from the company's solid foundation and experience in international markets, Investitori SGR positions itself as the preferred destination for a dedicated and customized portfolio management service.
Investitori SGR is a company dedicated to individual wealth management, "Funds under Italian Regulations", and delegated management of international insurance funds. The active approach, focused on macroeconomic fundamentals and stock and bond valuations defines the management philosophy. The attention to large assets and the ability to see each Client as "unique" are the basis of a tailor-made service, characterized by individual approach to portfolio construction and continuous risk monitoring. The selected individual will join the Risk Management function of Investitori SGR, the Italian asset management company of the Allianz Group and will be responsible for the process of managing operational, ICT and cybersecurity risks.
Functions: As a second-level control function, in coordination with the ISO and other control functions compliance and audit, the ICT & Security risk management will be responsible for, among other things:
- Managing the Operational and ICT Risk Framework
- Evaluating the risk profile of Third Parties
- Updating policies, methodologies, and processes for managing operational, ICT and Security Risk keeping them constantly updated on the evolution of external regulations, international standards, and Group Policies
- Contributing to the definition of the Summary Report on the operational, ICT and Security Risk
- Continuously monitoring exposure to ICT risk (including cyber risk), also through the ongoing evolution of the set of KRIs
- Participating in the incident management process to evaluate the severity of incidents and the effectiveness of the identified remediation plans
- Supporting the IT project process
- Managing internal reporting framework to corporate bodies and functions
- Training and raising awareness among staff about the importance of information security and the practices to follow.
- A minimum of 5 years of experience in the asset management or banking sector, ideally within the risk management function or within ICT/Security function or in primary consulting firms
- In-depth knowledge of information security standards (e.g., DORA, ISO/IEC 27001)
- Experience in third party management will be considered a plus
- Ability to create presentations and draft documents
- Project management skills
- Fluent knowledge of the English language
- Determination, flexibility, and ability to work in a team.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
più velocemente
